Risk and Controls Analyst
We are looking for an experienced IT Risk & Controls Specialist to join a leading organization.
In this role, you’ll play a key part in evaluating and strengthening IT controls, ensuring robust governance and compliance. You’ll work closely with stakeholders to enhance control frameworks, address potential gaps, and support risk mitigation strategies that align with business objectives. Your expertise will help shape a dedicated team focused on maintaining high-quality IT control standards.
Key Responsibilities:
* Conduct IT control assessments, identifying gaps and recommending improvements.
* Design and implement IT controls that align with regulatory and security best practices.
* Maintain and optimize the IT control framework to align with industry best practices.
* Validate control evidence to ensure ongoing effectiveness and compliance.
* Identify and escalate risks, providing strategic insights for leadership.
* Provide expert guidance on control design, implementation, and assurance.
* Work closely with internal and external auditors to manage audit processes efficiently.
Key Skills & Experience:
* Security Expertise – Strong understanding of IAM, encryption, authentication, and threat mitigation.
* Industry Background – Experience in cybersecurity, energy, utilities, or related fields is a plus.
* Framework Knowledge – Familiarity with NIST, COBIT, ISO 27001, Cyber Essentials, SWIFT, and CPNI.
* Analytical & Communication Skills – Ability to translate technical risks into clear, actionable insights for stakeholders.
* Self-Starter & Adaptable – Comfortable working independently in fast-paced environments.
We'd love to hear from you if you’re passionate about improving IT governance, mitigating risks, and strengthening cybersecurity controls.